Haze woofer[.]exe | Triage

Sharing

General

Target

Haze woofer.exe
Size

48KB
MD5

0b989cac59f9575163d5a9c9e2b26b33
SHA1

3fe0a85cb7478f82b9a095c31097c718c30ac386
SHA256

ce2f6e266eab26c92b5451bbdaa069c4bf4a06e8f99be8da0cb29596ac168958
SHA512

f4b6a2b8c9fdbd48fabd5645885cf9552ec23cdd0d88e7202ebf62108a0fec86b3c4cb920c32f7ecd737451e863a94196e2809ebbb4b4bf3ce02512e9d1a4d55
SSDEEP

768:TbTUiTSqQsP8hEvBBp2HUVWNoNbZwAoIsQrjPQXTH9tHUYc3qeU:/TVssP86v80VWKNb6AoIsWj4XTHrHPeU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Haze woofer.exe

Files

Haze woofer.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

D:\source codes\Spoofer\obj\Release\Malaia woofer.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ